Groups
Status: In Development - This feature is currently under development and will be available in a future release.
Overview
Groups in WatchTower will enable you to organize users into logical collections for easier access management. Instead of assigning permissions to individual users, you can assign them to groups.Planned Features
Group Management
- Create and manage user groups
- Add/remove users from groups
- Nest groups within other groups
- Sync groups from identity providers
Group-Based Access
- Assign groups to organizations
- Grant groups access to specific accounts
- Apply role permissions to groups
- Inherit permissions from parent groups
Group Types
- Department Groups - Organize by business department
- Customer Groups - Group users by customer assignment
- Project Groups - Temporary groups for project work
- Service Groups - Groups for specific service offerings
Use Cases
For MSPs:- Create groups per customer for customer-dedicated teams
- Organize staff by service line (Cloud, Security, DevOps)
- Grant access to customer organizations by group membership
- Organize by department (Engineering, Finance, Operations)
- Create project-based temporary groups
- Implement org-chart-based access hierarchy
- Group by function (DevOps, SRE, Platform Engineering)
- Create on-call groups with rotating membership
- Separate production and non-production access groups
Integration Plans
- Identity Provider Sync - Import groups from Azure AD, Okta, Google Workspace
- SCIM Support - Automatic group provisioning and deprovisioning
- Audit Logging - Track group membership changes
- Access Reviews - Periodic review of group access rights